blockchain for optimized security and energy management ...• address tier-bypassing (ferc order...

28
1 Blockchain for Optimized Security and Energy Management (BLOSEM) Sydni Credle David Tucker Lab Partners Lead Laboratory Tony Markel Dylan Cutler Mark Bryden Grant Johnson Mayank Malik David Chassin Sri Nikhil Gourisetti Bev Johnson Spring FE Project Review Meeting May 19, 2021 David Tucker, NETL Grant Johnson, Ames Laboratory

Upload: others

Post on 06-Sep-2021

0 views

Category:

Documents


0 download

TRANSCRIPT

Page 1: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

11

Blockchain for Optimized Security and Energy

Management (BLOSEM)

Sydni Credle

David Tucker

Lab PartnersLead Laboratory

Tony Markel

Dylan Cutler

Mark Bryden

Grant Johnson

Mayank Malik

David Chassin

Sri Nikhil Gourisetti

Bev Johnson

Spring FE Project Review Meeting – May 19, 2021

David Tucker, NETL

Grant Johnson, Ames Laboratory

Page 2: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

22

Agenda

➢ Project Objectives

➢ Energy Use Cases

➢Unified Testing Platform

➢ BLOSEM Use Case Demonstrations

➢ Current State of Blockchain Research

Page 3: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

33

BLOSEM Goals & Objectives

• Create a multi-lab, unified testing platform (BLOSEM UTP) that has interoperability to support a wide variety of blockchains. This testing environment will be representative of the modern grid of the future by encompassing generation, transmission, distribution, and end user (edge) for the electric grid.

• Identify and implement specific use cases that leverage inherent features of blockchain & ledger-based technologies to prevent, detect, and mitigate cyber-attacks.

• Accelerate the pipeline of validated cyber-physical security concepts from laboratory to utility sector, de-risking through standardized metrics and testing.

Blockchain for Optimized Security and Energy Management (BLOSEM)

GMLC Project 5.2.3 : Secure Communications of Information used for Grid Operations, for Normal

Operations, and/or during Emergency Response

Sponsors:

Page 4: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

44

BLOSEM Project Partners

UTILITY BLOCKCHAIN INDUSTRY GROUP (UBIG)

Energy Web Foundation

Labs

Contributors

Utilities

Advisors

Southern California Edison

Page 5: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

55

BLOSEM Project Status

30

-AP

RIL

-20

22

21

-MA

Y-2

02

1

17

-DEC

-20

20

30

-OC

T-2

02

1

Use Case Selection

Preliminary Design

Detailed Design

Implementation

Implementation Implementation

Demonstration

Today

ConclusionJournal Article

Page 6: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

6

USE CASE DOWN SELECTION

Page 7: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

77

Energy Blockchain Use Cases

Utility Communications and Configuration Management

SDN for control center and substation coordination (Sub-case # 1)

SDN for control center and substation coordination (Sub-case #2)

Replacing Cross-Utility Exchanges

Remote DER Control and Coordination

1

2

3

4

Device/Sensor Coordination and Data Integrity

Grid automation, sensor integration, autonomous data acquisition from grid assets

Dynamic Controls of Demand Response from Generation

Create an access protected and immutable library of Process Knowledge

Securing the data and algorithms used for parallel performance monitoring and digital twins

Establish Immutable and Access Controlled Historian

7

5

6

8

9

Blackstart

Grid Automation, System Segmentation, and Blackstart

Optimizing Restart from System Interruptions (blackstart, black sky, etc.)

12

13

Market

Grid Services Marketplace (Energy Focus)

14

Supply Chain

Secure ID (Identity Management)

10

11Supply Chain Security, Life Cycle Monitoring, and Real-time Auditing

Page 8: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

88

Use Case Down Selection

ID Category Title

1Utility Communications and

Configuration ManagementSDN for control center and substation coordination: Integrity check for patch

management

2SDN for control center and substation coordination: Data coordination

between SDN planes

3 Remote DER Control and Coordination

4 Replacing Cross-Utility Exchanges

5 Device/ Sensor Coordination

and Data Integrity

Grid automation, sensor integration, autonomous data acquisition from grid

assets

6 Dynamic Controls of Demand Response from Generation

7 Create an access protected and immutable library of Process Knowledge

8Securing the data and algorithms used for parallel performance monitoring

and digital twins

9 Establish Immutable and Access Controlled Historian

10 Supply Chain Secure ID (Identity Management)

11 Supply Chain Security, Life Cycle Monitoring, and Real-time Auditing

12 Blackstart Grid Automation, System Segmentation, and Blackstart

13 Optimizing Restart from System Interruptions (blackstart, black sky, etc.)

14 Transactive Markets Grid Services Marketplace (Energy Focus)

Page 9: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

99

Final Selection of Use Cases

Supply Chain

Security, Life Cycle

Monitoring, and Real-

time Auditing

Dynamic Controls of

Demand Response

from Generation

• Improve asset lifecycle

tracking process by logging

events that change the

configuration and relevance of

an asset to operations

• Valid for manufacturer to

delivery to install to

maintenance to

decommissioning

• Timescale: Event-driven

• Facilitate DER aggregators

(DERA) bidding into both the

day-ahead (DA) and real-time

(RT) energy markets

• Validate that expected

performance of the DERA

does not cause challenges for

secure distribution system

operation

• Timescale: minutes; hours/day

DER Coordination and

Control: Supporting Secure

Wholesale Market

Participation and

Information Exchange with

Generation

• Facilitate dynamic controls for

generation application by

improving authenticity &

integrity of change requests to

operations

• Valid for responding to load

demand changes and

frequency regulation

• Timescale: Seconds;

Continuous

Page 10: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

10

BLOSEM UNIFIED TESTING PLATFORM

Page 11: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

11

UTP Core – Scope and Objectives

Objectives:

Enable the project goal of de-risking and accelerating Blockchain applications for energy systems:

• Enable the ability to rapidly connect blockchain solutions with grid emulation environments, including hardware-in-the-loop and co-

simulation configurations

• Decouple the dependencies of the specific blockchain under test to enable modularity, interoperability, and reusability to more rapidly

connect and evaluate diverse blockchain solutions

• Develop core functionality to enable the flow of data and commands in a use case agnostic manner, easily extendible to new grid

emulation system configurations

Core Functional Responsibilities:

• Connectivity

‒ Communication interfaces for providing the incoming/outgoing requests and events

• Control and Data Flow

‒ Platform for enabling the flow of information. Extends interfaces to process and route from source to destination.

• Time Synchronization and Management

‒ Enable the coordination of time within asynchronous, concurrent environments that may need to synchronize for shared data and operations.

• Testing Infrastructure

‒ Platform for hosting, recording, and analyzing the testing metrics for the Blockchain and the Use Case

• System Automation and Data Orchestration

‒ Enabling configurability and automation of defining resources and connections within the BLOSEM environment.

Page 12: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

1212

UTP Core Component Responsibilities

BlockchainNodes

Blockchain Networks

Network ServicesExchange

Blockchain Node or Network

Services

Grid EmulationNetwork Services

Exchange

Grid EmulationNetworks

Grid EmulationNode or Network

Services

Grid Emulation Nodes

UTP Core

5

1

2

3

4

ConnectivityBlockchain & Lab

Control & Data Flow

TimingBlockchain, Co-Simulation, &

Lab

TestingBlockchain & Use Case

OrchestrationConfigure & Deploy

Co

-Sim

ula

tio

nH

IL O

rch

est

rati

on

Page 13: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

13

UTP Core – Framework Components

Network ServicesExchange

Networks

Node or NetworkServices

NodesNode or NetworkServices

Nodes

Network ServicesExchange

Networks

Grid Simulators(e.g. GridLab-D, OpenDSS)

Physical systems simulators (e.g., generation assets, DER)

Hardware in the loop

On-chain ledger

Access controls

Policies

Cloud Peer nodes

On-prem peer nodes

UTP Core

DSO/ISO Federates

Blockchain network

ConsensusSmart

contracts

Off-chain database

User Interface

API(s) or Agents

AP

I Gat

ew

ay

Supervisory Applications

Co-sim Platform

HIL Orchestration

I/OHIL Platform

Process & Route

Co-Simulation PlatformOrchestration

User Interfaces & Testing Applications

Page 14: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

1414

UTP Core – Testing and Evaluation

Providing logging and application infrastructure for measuring the performance of a blockchain solution to

meet the needs of use case tasks

Preliminary categories of testing metrics:

• Latency

• Throughput

• Repeatability

• Failure Rate

• Scalability

• Transaction Scheduling

• Privacy

• Security

Page 15: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

15

USE CASE – SUPPLY CHAIN

Page 16: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

16

Use Case Research Goals:• Is the device or software that shipped the same asset that was received?• Is the device or software deployed in operations the same asset that continues to be installed and operating?• What is the risk introduced and the urgency of remediation when a vulnerability has been discovered or a cyber

incident has occurred?• Can this traceability and risk assessment be applied to hardware and software sub-components?

• What vulnerability and cyber incident information is required to be shared broadly across organizations, and what must be kept to sharing within sub-groups of the network stakeholders?

Use Case Pain Point Objectives:• Asset information isn’t trusted or traceable.• Asset tampering, cloning, and imposter device• Missing or limited asset information• Asset vulnerability and/or cyber threat issues aren’t widely shared.• Not all information is digitized.• Opportunity to automate the impact assessment of a cyber incident or vulnerability

Supply Chain – Scope and Objectives

Page 17: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

1717

➢ Digital Objects for Lifecycle Information

• Catalog Assets

o Vendor published device definition – HW/SW

subcomponents and linked to vulnerabilities

• Operations Assets

o Operationally deployed asset with installation details and

custom configurations

• Vulnerability Events

o Participant disclosed metadata linked to a Catalog item

• Maintenance Events

o Logging changes to the configuration of an operationally

deployed asset (e.g. repairs, updates, location, etc.)

➢ Applying to three categories of assets:

• Software Applications

o Executables and dependencies installed in operations

• Embedded Systems

o Electrical, mechanical, and embedded software sub-

components

• Hardware Only Sensors

o Supplementing with compute to participate

➢ Embedding functions for challenge/response re-

verification of device hosted configuration

Supply Chain – Implementation Plans

Page 18: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

18

Supply Chain – Blockchain Architecture

ORDERER

ORDERER

ORDERER

Peer Node(s)

Catalog AssetAPI

Express JS

OrderingOrganization

Peer Node(s) Peer Node(s)

Peer Node(s)

Peer Node(s)

Peer Node(s)

CAUsersAdminsAffiliations

MSP

VendorOrganization

CAUsersAdminsAffiliations

MSP

UtilityOrganization

CAUsersAdminsAffiliations

MSP

Regulator / Threat Info Provider Organization

Vulnerability EventAPI

Express JS

Operations AssetAPI

Express JS

Maintenance EventAPI

Express JS

Notify VerifyVerify

ORDERER

ORDERER

Page 19: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

1919

➢ Hardware Bill of Materials for logic bearing

components

➢ Software Bill of Materials for NTIA minimum

fields and dependency relationships

• NTIA minimum fields

➢ Communication – Port / Protocol for automating

network control

➢ Installation Metadata for automating Risk

assessment decisions

• Owner

• Location – Site ID, Business Unit

• Impact – PERA Zone, Category, Classification

Supply Chain – Metadata Discussion

Page 20: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

20

USE CASE – DER COORDINATION & CONTROLS

Page 21: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

21

DER Coordination Use Case

Page 22: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

22

DER Coordination Scope & Objectives

In Scope:

• Flexible access controls + address grid constraints

• Address tier-bypassing (FERC Order 2222)

• Double-counting, distribution factor

• Contract mediation (delegation of control authority)

• Communication with utility-owned generation

Out of Scope:

• Control system design (leverage from existing work)

• Non-FERC 2222 architectures

• Peer-to-peer markets (markets in general)

Entities in Scope:

• Distributed Energy Resource (DER) owners – through lab resources

• DER Aggregators (DERA)

• Distributed System Operators (DSO)

• Utility owned generation

• Independent System Operators (ISO) / Regional Transmission Operators (RTO) – No SCUC/SCED modeled

Objectives:

• Examine and demonstrate BLOSEM platform components for blockchain-based grid operations use-cases.

• Facilitate distributed communications architecture across disparate DER owners and energy entities.

• Establish trust anchors with integrity and confidentiality through blockchain in a trustless environment.

Page 23: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

23

CURRENT STATE OF BLOCKCHAIN RESEARCH

Page 24: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

24

BLOSEM Review Article for Publication

A Survey of Blockchain Research & Development

Activities

Activities

• Literature review/survey of

blockchain projects

• Mapping use cases to

BLOSEM categorization

matrix

Scopes

Blockchain projects and R&D efforts within U.S.

DOE and U.S. Power utility industries

•BLOSEM Categorization Matrix; Energy System Domains and Blockchain Properties

•R&D Opportunities and Recommendations

• Early September – submission for journal publication

Outcomes

Page 25: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

25

CONCLUSION

Page 26: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

2626

Conclusion

▬ BLOSEM team seeks to create a multi-lab, unified testing platform (BLOSEM UTP) that has interoperability to

support a wide variety of blockchains and accelerate the pipeline of security solutions from laboratory to

industry

▬ Surveyed and down selected Energy use cases of Blockchain

• Inputs collected from within the project team, industry advisors, and DOE program managers

• Delivered the Use Case Milestone Report in September 2020

▬ Developing a Unified Testing Platform to rapidly connect new use cases to laboratory grid emulation

environments and evaluate new blockchain solutions

• Abstracting Blockchain connections from Laboratory components

• Designing evaluation frameworks for Use Case fit to a Blockchain under test

• Closed the Preliminary Design Requirements Review in February 2021

▬ Publishing a journal article for the current state of Blockchain energy research and a framework for assessing

the Blockchain research portfolio

Page 27: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

2727

Acknowledgment and Disclaimer

▬ This material is based upon work supported by the Department of Energy Award GMLC project #5.2.3

▬ This report was prepared as an account of work sponsored by an agency of the United States

Government. Neither the United States Government nor any agency thereof, nor any of their

employees, makes any warranty, express or implied, or assumes any legal liability or responsibility for

the accuracy, completeness, or usefulness of any information, apparatus, product, or process

disclosed, or represents that its use would not infringe privately owned rights. Reference herein to

any specific commercial product, process, or service by trade name, trademark, manufacturer, or

otherwise does not necessarily constitute or imply its endorsement, recommendation, or favoring by

the United States Government or any agency thereof. The views and opinions of authors expressed

herein do not necessarily state or reflect those of the United States Government or any agency

thereof.

Page 28: Blockchain for Optimized Security and Energy Management ...• Address tier-bypassing (FERC Order 2222) • Double-counting, distribution factor • Contract mediation (delegation

2828

Thank you!

Sydni Credle (Co-PI) [email protected]

David Tucker

[email protected]

Lab PartnersLead Laboratory

Tony Markel (Co-PI)

[email protected]

Dylan Cutler

[email protected]

Grant Johnson

[email protected]

Mark Bryden

[email protected]

Mayank Malik

[email protected]

David Chassin

[email protected]

Sri Nikhil Gourisetti

[email protected]

Bev Johnson

[email protected]